<?xml version="1.0"?>
<pfsense>
	<version>23.3</version>
	<lastchange></lastchange>
	<system>
		<optimization>normal</optimization>
		<hostname>pfSense</hostname>
		<domain>home.arpa</domain>
		<group>
			<name>all</name>
			<description><![CDATA[All Users]]></description>
			<scope>system</scope>
			<gid>1998</gid>
			<member>0</member>
		</group>
		<group>
			<name>admins</name>
			<description><![CDATA[System Administrators]]></description>
			<scope>system</scope>
			<gid>1999</gid>
			<member>0</member>
			<priv>page-all</priv>
		</group>
		<user>
			<name>admin</name>
			<descr><![CDATA[System Administrator]]></descr>
			<scope>system</scope>
			<groupname>admins</groupname>
			<uid>0</uid>
			<priv>user-shell-access</priv>
			<bcrypt-hash>$2y$10$7atCXL3oHJh9PLJc1GBz4eM3iMwZSI7DlvUu4vf5WUE0ftP1qvLk2</bcrypt-hash>
		</user>
		<nextuid>2000</nextuid>
		<nextgid>2000</nextgid>
		<timeservers>2.pfsense.pool.ntp.org</timeservers>
		<webgui>
			<protocol>http</protocol>
			<loginautocomplete></loginautocomplete>
			<ssl-certref>660f044a465d7</ssl-certref>
			<dashboardcolumns>2</dashboardcolumns>
			<webguicss>pfSense-dark.css</webguicss>
			<logincss>9b59b6</logincss>
			<max_procs>2</max_procs>
			<roaming>enabled</roaming>
			<systemlogsfilterpanel></systemlogsfilterpanel>
		</webgui>
		<disablenatreflection>yes</disablenatreflection>
		<disablesegmentationoffloading></disablesegmentationoffloading>
		<disablelargereceiveoffloading></disablelargereceiveoffloading>
		<ipv6allow></ipv6allow>
		<maximumtableentries>400000</maximumtableentries>
		<powerd_ac_mode>hadp</powerd_ac_mode>
		<powerd_battery_mode>hadp</powerd_battery_mode>
		<powerd_normal_mode>hadp</powerd_normal_mode>
		<bogons>
			<interval>monthly</interval>
		</bogons>
		<hn_altq_enable></hn_altq_enable>
		<already_run_config_upgrade></already_run_config_upgrade>
		<ssh>
			<enable>enabled</enable>
			<port>22</port>
		</ssh>
		<timezone>Asia/Omsk</timezone>
		<language>en_US</language>
		<serialspeed>115200</serialspeed>
		<primaryconsole>video</primaryconsole>
		<dnsserver>8.8.8.8</dnsserver>
		<dnslocalhost>remote</dnslocalhost>
		<disablechecksumoffloading></disablechecksumoffloading>
	</system>
	<interfaces>
		<wan>
			<enable></enable>
			<if>em0</if>
			<ipaddr>dhcp</ipaddr>
			<ipaddrv6>dhcp6</ipaddrv6>
			<gateway></gateway>
			<media></media>
			<mediaopt></mediaopt>
			<dhcp6-duid></dhcp6-duid>
			<dhcp6-ia-pd-len>0</dhcp6-ia-pd-len>
		</wan>
		<lan>
			<enable></enable>
			<if>em1</if>
			<descr><![CDATA[ADMIN_LAN]]></descr>
			<spoofmac></spoofmac>
			<ipaddr>192.168.1.5</ipaddr>
			<subnet>24</subnet>
		</lan>
		<opt1>
			<if>em2</if>
			<descr><![CDATA[CLIENT_LAN]]></descr>
			<enable></enable>
			<ipaddr>192.168.2.10</ipaddr>
			<subnet>24</subnet>
			<spoofmac></spoofmac>
		</opt1>
	</interfaces>
	<staticroutes></staticroutes>
	<dhcpd>
		<lan>
			<range>
				<from>192.168.1.10</from>
				<to>192.168.1.200</to>
			</range>
			<enable></enable>
		</lan>
		<opt1>
			<range>
				<from>192.168.2.11</from>
				<to>192.168.2.200</to>
			</range>
			<enable></enable>
		</opt1>
	</dhcpd>
	<dhcpdv6>
		<lan>
			<range>
				<from>::1000</from>
				<to>::2000</to>
			</range>
			<ramode>disabled</ramode>
			<rapriority>medium</rapriority>
		</lan>
	</dhcpdv6>
	<snmpd>
		<syslocation></syslocation>
		<syscontact></syscontact>
		<rocommunity>public</rocommunity>
	</snmpd>
	<diag>
		<ipv6nat></ipv6nat>
	</diag>
	<syslog>
		<filterdescriptions>1</filterdescriptions>
		<nentries>500</nentries>
		<logcompressiontype>none</logcompressiontype>
		<format>rfc5424</format>
		<rotatecount></rotatecount>
		<remoteserver>192.168.1.108:514</remoteserver>
		<remoteserver2></remoteserver2>
		<remoteserver3></remoteserver3>
		<sourceip>lan</sourceip>
		<ipproto>ipv4</ipproto>
		<logall></logall>
		<logconfigchanges>enabled</logconfigchanges>
		<enable></enable>
		<filter></filter>
		<auth></auth>
		<portalauth></portalauth>
		<vpn></vpn>
		<dpinger></dpinger>
		<hostapd></hostapd>
		<system></system>
		<resolver></resolver>
		<routing></routing>
		<ntpd></ntpd>
		<dhcp></dhcp>
	</syslog>
	<nat>
		<outbound>
			<mode>automatic</mode>
		</outbound>
		<separator></separator>
		<rule>
			<source>
				<any></any>
			</source>
			<destination>
				<network>wanip</network>
				<port>80</port>
			</destination>
			<ipprotocol>inet</ipprotocol>
			<protocol>tcp</protocol>
			<target>192.168.1.107</target>
			<local-port>80</local-port>
			<interface>wan</interface>
			<descr></descr>
			<associated-rule-id>nat_6621404088a378.98672080</associated-rule-id>
			<updated>
				<time>1713455168</time>
				<username><![CDATA[admin@192.168.1.106 (Local Database)]]></username>
			</updated>
			<created>
				<time>1713455168</time>
				<username><![CDATA[admin@192.168.1.106 (Local Database)]]></username>
			</created>
		</rule>
	</nat>
	<filter>
		<rule>
			<ipprotocol>inet</ipprotocol>
			<type>block</type>
			<descr><![CDATA[pfB_PRI1_v4 auto rule]]></descr>
			<source>
				<address>pfB_PRI1_v4</address>
			</source>
			<destination>
				<any></any>
			</destination>
			<log></log>
			<created>
				<time>1713479062</time>
				<username><![CDATA[Auto]]></username>
			</created>
			<interface>wan</interface>
			<tracker>1770009620</tracker>
		</rule>
		<rule>
			<id></id>
			<tracker>1713113983</tracker>
			<type>block</type>
			<interface>wan</interface>
			<ipprotocol>inet</ipprotocol>
			<tag></tag>
			<tagged></tagged>
			<max></max>
			<max-src-nodes></max-src-nodes>
			<max-src-conn></max-src-conn>
			<max-src-states></max-src-states>
			<statetimeout></statetimeout>
			<statetype><![CDATA[keep state]]></statetype>
			<os></os>
			<protocol>icmp</protocol>
			<icmptype>any</icmptype>
			<source>
				<any></any>
			</source>
			<destination>
				<network>(self)</network>
			</destination>
			<descr></descr>
			<created>
				<time>1713113983</time>
				<username><![CDATA[admin@192.168.1.101 (Local Database)]]></username>
			</created>
			<updated>
				<time>1713114902</time>
				<username><![CDATA[admin@192.168.1.101 (Local Database)]]></username>
			</updated>
		</rule>
		<rule>
			<id></id>
			<tracker>1713028400</tracker>
			<type>block</type>
			<interface>lan</interface>
			<ipprotocol>inet</ipprotocol>
			<tag></tag>
			<tagged></tagged>
			<max></max>
			<max-src-nodes></max-src-nodes>
			<max-src-conn></max-src-conn>
			<max-src-states></max-src-states>
			<statetimeout></statetimeout>
			<statetype><![CDATA[keep state]]></statetype>
			<os></os>
			<source>
				<address>192.168.1.104</address>
				<not></not>
			</source>
			<destination>
				<any></any>
			</destination>
			<log></log>
			<descr><![CDATA[Internet block]]></descr>
			<updated>
				<time>1713028400</time>
				<username><![CDATA[admin@192.168.1.101 (Local Database)]]></username>
			</updated>
			<created>
				<time>1713028400</time>
				<username><![CDATA[admin@192.168.1.101 (Local Database)]]></username>
			</created>
			<disabled></disabled>
		</rule>
		<rule>
			<id></id>
			<tracker>1712348198</tracker>
			<type>pass</type>
			<interface>lan</interface>
			<ipprotocol>inet</ipprotocol>
			<tag></tag>
			<tagged></tagged>
			<max></max>
			<max-src-nodes></max-src-nodes>
			<max-src-conn></max-src-conn>
			<max-src-states></max-src-states>
			<statetimeout></statetimeout>
			<statetype><![CDATA[keep state]]></statetype>
			<os></os>
			<source>
				<any></any>
			</source>
			<destination>
				<any></any>
			</destination>
			<log></log>
			<descr></descr>
			<updated>
				<time>1712348198</time>
				<username><![CDATA[admin@192.168.1.101 (Local Database)]]></username>
			</updated>
			<created>
				<time>1712348198</time>
				<username><![CDATA[admin@192.168.1.101 (Local Database)]]></username>
			</created>
			<disabled></disabled>
		</rule>
		<rule>
			<type>pass</type>
			<ipprotocol>inet</ipprotocol>
			<descr><![CDATA[Default allow LAN to any rule]]></descr>
			<interface>lan</interface>
			<tracker>0100000101</tracker>
			<source>
				<network>lan</network>
			</source>
			<destination>
				<any></any>
			</destination>
		</rule>
		<rule>
			<type>pass</type>
			<ipprotocol>inet6</ipprotocol>
			<descr><![CDATA[Default allow LAN IPv6 to any rule]]></descr>
			<interface>lan</interface>
			<tracker>0100000102</tracker>
			<source>
				<network>lan</network>
			</source>
			<destination>
				<any></any>
			</destination>
			<disabled></disabled>
		</rule>
		<rule>
			<id></id>
			<tracker>1713190601</tracker>
			<type>pass</type>
			<interface>opt1</interface>
			<ipprotocol>inet</ipprotocol>
			<tag></tag>
			<tagged></tagged>
			<max></max>
			<max-src-nodes></max-src-nodes>
			<max-src-conn></max-src-conn>
			<max-src-states></max-src-states>
			<statetimeout></statetimeout>
			<statetype><![CDATA[keep state]]></statetype>
			<os></os>
			<source>
				<any></any>
			</source>
			<destination>
				<address>192.168.1.199</address>
			</destination>
			<descr><![CDATA[server folder]]></descr>
			<updated>
				<time>1713190601</time>
				<username><![CDATA[admin@192.168.1.106 (Local Database)]]></username>
			</updated>
			<created>
				<time>1713190601</time>
				<username><![CDATA[admin@192.168.1.106 (Local Database)]]></username>
			</created>
		</rule>
		<rule>
			<id></id>
			<tracker>1713121364</tracker>
			<type>block</type>
			<interface>opt1</interface>
			<ipprotocol>inet</ipprotocol>
			<tag></tag>
			<tagged></tagged>
			<max></max>
			<max-src-nodes></max-src-nodes>
			<max-src-conn></max-src-conn>
			<max-src-states></max-src-states>
			<statetimeout></statetimeout>
			<statetype><![CDATA[keep state]]></statetype>
			<os></os>
			<source>
				<any></any>
			</source>
			<destination>
				<address>192.168.1.0/24</address>
			</destination>
			<descr><![CDATA[client block control local]]></descr>
			<created>
				<time>1713121364</time>
				<username><![CDATA[admin@192.168.1.106 (Local Database)]]></username>
			</created>
			<updated>
				<time>1713121378</time>
				<username><![CDATA[admin@192.168.1.106 (Local Database)]]></username>
			</updated>
		</rule>
		<rule>
			<id></id>
			<tracker>1713121252</tracker>
			<type>block</type>
			<interface>opt1</interface>
			<ipprotocol>inet</ipprotocol>
			<tag></tag>
			<tagged></tagged>
			<max></max>
			<max-src-nodes></max-src-nodes>
			<max-src-conn></max-src-conn>
			<max-src-states></max-src-states>
			<statetimeout></statetimeout>
			<statetype><![CDATA[keep state]]></statetype>
			<os></os>
			<protocol>tcp</protocol>
			<source>
				<any></any>
			</source>
			<destination>
				<network>(self)</network>
				<port>80</port>
			</destination>
			<descr><![CDATA[client block fw settings]]></descr>
			<created>
				<time>1713121252</time>
				<username><![CDATA[admin@192.168.1.106 (Local Database)]]></username>
			</created>
			<updated>
				<time>1713121313</time>
				<username><![CDATA[admin@192.168.1.106 (Local Database)]]></username>
			</updated>
		</rule>
		<rule>
			<id></id>
			<tracker>1713120760</tracker>
			<type>pass</type>
			<interface>opt1</interface>
			<ipprotocol>inet</ipprotocol>
			<tag></tag>
			<tagged></tagged>
			<max></max>
			<max-src-nodes></max-src-nodes>
			<max-src-conn></max-src-conn>
			<max-src-states></max-src-states>
			<statetimeout></statetimeout>
			<statetype><![CDATA[keep state]]></statetype>
			<os></os>
			<source>
				<any></any>
			</source>
			<destination>
				<any></any>
			</destination>
			<descr></descr>
			<created>
				<time>1713120760</time>
				<username><![CDATA[admin@192.168.1.106 (Local Database)]]></username>
			</created>
			<updated>
				<time>1713121160</time>
				<username><![CDATA[admin@192.168.1.106 (Local Database)]]></username>
			</updated>
		</rule>
		<rule>
			<source>
				<any></any>
			</source>
			<interface>wan</interface>
			<ipprotocol>inet</ipprotocol>
			<protocol>tcp</protocol>
			<destination>
				<address>192.168.1.107</address>
				<port>80</port>
			</destination>
			<descr><![CDATA[NAT ]]></descr>
			<associated-rule-id>nat_6621404088a378.98672080</associated-rule-id>
			<tracker>1713455168</tracker>
			<created>
				<time>1713455168</time>
				<username><![CDATA[NAT Port Forward]]></username>
			</created>
		</rule>
		<separator>
			<lan></lan>
			<wan></wan>
			<opt1></opt1>
		</separator>
	</filter>
	<shaper></shaper>
	<ipsec>
		<client></client>
	</ipsec>
	<aliases>
		<alias>
			<name>pfB_PRI1_v4</name>
			<url>http://127.0.0.1:80/pfblockerng/pfblockerng.php?pfb=pfB_PRI1_v4</url>
			<updatefreq>32</updatefreq>
			<address></address>
			<descr><![CDATA[pfBlockerNG  Auto  Alias [ Abuse_Feodo_C2_v4,Abuse_SSLBL_v4,CINS_army_v4,ET_Block_v4,ET_Comp_v4,ISC_Block_v4,Spamhaus_Drop_v4,Spamhaus_eDrop_v4,Talos_BL_v4, ]]]></descr>
			<type>urltable</type>
			<detail><![CDATA[DO NOT EDIT THIS ALIAS]]></detail>
		</alias>
	</aliases>
	<proxyarp></proxyarp>
	<cron>
		<item>
			<minute>*/1</minute>
			<hour>*</hour>
			<mday>*</mday>
			<month>*</month>
			<wday>*</wday>
			<who>root</who>
			<command>/usr/sbin/newsyslog</command>
		</item>
		<item>
			<minute>1</minute>
			<hour>3</hour>
			<mday>*</mday>
			<month>*</month>
			<wday>*</wday>
			<who>root</who>
			<command>/etc/rc.periodic daily</command>
		</item>
		<item>
			<minute>15</minute>
			<hour>4</hour>
			<mday>*</mday>
			<month>*</month>
			<wday>6</wday>
			<who>root</who>
			<command>/etc/rc.periodic weekly</command>
		</item>
		<item>
			<minute>30</minute>
			<hour>5</hour>
			<mday>1</mday>
			<month>*</month>
			<wday>*</wday>
			<who>root</who>
			<command>/etc/rc.periodic monthly</command>
		</item>
		<item>
			<minute>1,31</minute>
			<hour>0-5</hour>
			<mday>*</mday>
			<month>*</month>
			<wday>*</wday>
			<who>root</who>
			<command>/usr/bin/nice -n20 adjkerntz -a</command>
		</item>
		<item>
			<minute>1</minute>
			<hour>3</hour>
			<mday>1</mday>
			<month>*</month>
			<wday>*</wday>
			<who>root</who>
			<command>/usr/bin/nice -n20 /etc/rc.update_bogons.sh</command>
		</item>
		<item>
			<minute>1</minute>
			<hour>1</hour>
			<mday>*</mday>
			<month>*</month>
			<wday>*</wday>
			<who>root</who>
			<command>/usr/bin/nice -n20 /etc/rc.dyndns.update</command>
		</item>
		<item>
			<minute>*/60</minute>
			<hour>*</hour>
			<mday>*</mday>
			<month>*</month>
			<wday>*</wday>
			<who>root</who>
			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot</command>
		</item>
		<item>
			<minute>30</minute>
			<hour>12</hour>
			<mday>*</mday>
			<month>*</month>
			<wday>*</wday>
			<who>root</who>
			<command>/usr/bin/nice -n20 /etc/rc.update_urltables</command>
		</item>
		<item>
			<minute>1</minute>
			<hour>0</hour>
			<mday>*</mday>
			<month>*</month>
			<wday>*</wday>
			<who>root</who>
			<command>/usr/bin/nice -n20 /etc/rc.update_pkg_metadata</command>
		</item>
		<item>
			<minute>*/5</minute>
			<hour>*</hour>
			<mday>*</mday>
			<month>*</month>
			<wday>*</wday>
			<who>root</who>
			<command>/usr/bin/nice -n20 /usr/local/bin/php-cgi -f /usr/local/pkg/suricata/suricata_check_cron_misc.inc</command>
		</item>
		<item>
			<minute></minute>
			<hour></hour>
			<mday></mday>
			<month></month>
			<wday></wday>
			<who>root</who>
			<command>/usr/bin/nice -n20 /usr/local/bin/php-cgi -f /usr/local/pkg/suricata/suricata_check_for_rule_updates.php</command>
		</item>
		<item>
			<minute></minute>
			<hour></hour>
			<mday></mday>
			<month></month>
			<wday></wday>
			<who>root</who>
			<command>/usr/bin/nice -n20 /sbin/pfctl -q -t snort2c -T expire </command>
		</item>
		<item>
			<minute>0</minute>
			<hour>0</hour>
			<mday>*</mday>
			<month>*</month>
			<wday>*</wday>
			<who>root</who>
			<command>/usr/local/sbin/squid -k rotate -f /usr/local/etc/squid/squid.conf</command>
		</item>
		<item>
			<minute>15</minute>
			<hour>0</hour>
			<mday>*</mday>
			<month>*</month>
			<wday>*</wday>
			<who>root</who>
			<command>/usr/local/pkg/swapstate_check.php</command>
		</item>
		<item>
			<minute>0</minute>
			<hour>*</hour>
			<mday>*</mday>
			<month>*</month>
			<wday>*</wday>
			<who>root</who>
			<command>/usr/local/bin/php /usr/local/www/pfblockerng/pfblockerng.php cron &gt;&gt; /var/log/pfblockerng/pfblockerng.log 2&gt;&amp;1</command>
		</item>
	</cron>
	<wol></wol>
	<rrd>
		<enable></enable>
		<category>left=system-processor&amp;right=&amp;resolution=300&amp;timePeriod=-1d&amp;startDate=&amp;endDate=&amp;startTime=0&amp;endTime=0&amp;graphtype=line&amp;invert=true&amp;refresh-interval=0</category>
	</rrd>
	<widgets>
		<sequence>system_information:col1:open:0,disks:col1:open:0,interfaces:col2:open:0,pfblockerng:col2:open:0,gateways:col2:open:0,log:col2:open:0</sequence>
		<period>10</period>
	</widgets>
	<openvpn></openvpn>
	<dnshaper></dnshaper>
	<unbound>
		<enable></enable>
		<dnssec></dnssec>
		<active_interface></active_interface>
		<outgoing_interface></outgoing_interface>
		<custom_options>c2VydmVyOmluY2x1ZGU6IC92YXIvdW5ib3VuZC9wZmJfZG5zYmwuKmNvbmY=</custom_options>
		<hideidentity></hideidentity>
		<hideversion></hideversion>
		<dnssecstripped></dnssecstripped>
	</unbound>
	<vlans></vlans>
	<qinqs></qinqs>
	<revision>
		<time>1713479062</time>
		<description><![CDATA[(system): pfBlockerNG: saving Firewall rules]]></description>
		<username><![CDATA[(system)]]></username>
	</revision>
	<gateways></gateways>
	<captiveportal></captiveportal>
	<dnsmasq></dnsmasq>
	<ntpd>
		<gps></gps>
	</ntpd>
	<cert>
		<refid>660f044a465d7</refid>
		<descr><![CDATA[GUI default (660f044a465d7)]]></descr>
		<type>server</type>
		<crt>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</crt>
		<prv>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</prv>
	</cert>
	<ppps></ppps>
	<installedpackages>
		<package>
			<name>suricata</name>
			<website>http://suricata-ids.org/</website>
			<descr><![CDATA[High Performance Network IDS, IPS and Security Monitoring engine by OISF.]]></descr>
			<version>7.0.4_1</version>
			<configurationfile>suricata.xml</configurationfile>
			<include_file>/usr/local/pkg/suricata/suricata.inc</include_file>
		</package>
		<package>
			<name>Lightsquid</name>
			<descr><![CDATA[LightSquid is a high performance web proxy reporting tool. Includes proxy realtime statistics (SQStat).
			&lt;strong&gt;Requires Squid package.&lt;/strong&gt;]]></descr>
			<website>http://lightsquid.sf.net/</website>
			<version>3.0.7_3</version>
			<configurationfile>lightsquid.xml</configurationfile>
			<noembedded>true</noembedded>
			<include_file>/usr/local/pkg/lightsquid.inc</include_file>
		</package>
		<package>
			<name>squid3</name>
			<internal_name>squid</internal_name>
			<descr><![CDATA[High performance web proxy cache (3.4 branch). It combines Squid as a proxy server with its capabilities of acting as a HTTP / HTTPS reverse proxy.&lt;br /&gt;
			It includes an Exchange-Web-Access (OWA) Assistant, SSL filtering and antivirus integration via C-ICAP.]]></descr>
			<pkginfolink>https://forum.netgate.com/category/52/cache-proxy</pkginfolink>
			<website>http://www.squid-cache.org/</website>
			<version>0.4.46</version>
			<configurationfile>squid.xml</configurationfile>
			<filter_rule_function>squid_generate_rules</filter_rule_function>
			<tabs>
				<tab>
					<text><![CDATA[General]]></text>
					<url>/pkg_edit.php?xml=squid.xml&amp;id=0</url>
					<active></active>
				</tab>
				<tab>
					<text><![CDATA[Remote Cache]]></text>
					<url>/pkg.php?xml=squid_upstream.xml</url>
				</tab>
				<tab>
					<text><![CDATA[Local Cache]]></text>
					<url>/pkg_edit.php?xml=squid_cache.xml&amp;id=0</url>
				</tab>
				<tab>
					<text><![CDATA[Antivirus]]></text>
					<url>/pkg_edit.php?xml=squid_antivirus.xml&amp;id=0</url>
				</tab>
				<tab>
					<text><![CDATA[ACLs]]></text>
					<url>/pkg_edit.php?xml=squid_nac.xml&amp;id=0</url>
				</tab>
				<tab>
					<text><![CDATA[Traffic Mgmt]]></text>
					<url>/pkg_edit.php?xml=squid_traffic.xml&amp;id=0</url>
				</tab>
				<tab>
					<text><![CDATA[Authentication]]></text>
					<url>/pkg_edit.php?xml=squid_auth.xml&amp;id=0</url>
				</tab>
				<tab>
					<text><![CDATA[Users]]></text>
					<url>/pkg.php?xml=squid_users.xml</url>
				</tab>
				<tab>
					<text><![CDATA[Real Time]]></text>
					<url>/squid_monitor.php</url>
				</tab>
				<tab>
					<text><![CDATA[Status]]></text>
					<url>/status_squid.php</url>
				</tab>
				<tab>
					<text><![CDATA[Sync]]></text>
					<url>/pkg_edit.php?xml=squid_sync.xml</url>
				</tab>
			</tabs>
			<include_file>/usr/local/pkg/squid.inc</include_file>
			<plugins>
				<item>
					<type>plugin_carp</type>
				</item>
				<item>
					<type>plugin_certificates</type>
				</item>
			</plugins>
		</package>
		<package>
			<name>pfBlockerNG</name>
			<descr><![CDATA[Manage IPv4/v6 List Sources into &#039;Deny, Permit or Match&#039; formats.&lt;br /&gt;
			GeoIP database by MaxMind Inc. (GeoLite2 Free version).&lt;br /&gt;
			De-Duplication, Suppression, and Reputation enhancements.&lt;br /&gt;
			Provision to download from diverse List formats.&lt;br /&gt;
			Advanced Integration for Proofpoint ET IQRisk IP Reputation Threat Sources.&lt;br /&gt;
			Domain Name (DNSBL) blocking via Unbound DNS Resolver.]]></descr>
			<pkginfolink>https://docs.netgate.com/pfsense/en/latest/packages/pfblocker.html</pkginfolink>
			<version>3.2.0_8</version>
			<configurationfile>pfblockerng.xml</configurationfile>
			<include_file>/usr/local/pkg/pfblockerng/pfblockerng.inc</include_file>
		</package>
		<suricata>
			<config>
				<forcekeepsettings>on</forcekeepsettings>
				<sid_list_migration>1</sid_list_migration>
				<suricata_config_ver>7.0.4_1</suricata_config_ver>
			</config>
			<sid_mgmt_lists>
				<item>
					<name>disablesid-sample.conf</name>
					<modtime>1711481918</modtime>
					<content>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</content>
				</item>
				<item>
					<name>dropsid-sample.conf</name>
					<modtime>1711481918</modtime>
					<content>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</content>
				</item>
				<item>
					<name>enablesid-sample.conf</name>
					<modtime>1711481918</modtime>
					<content>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</content>
				</item>
				<item>
					<name>modifysid-sample.conf</name>
					<modtime>1711481918</modtime>
					<content>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</content>
				</item>
			</sid_mgmt_lists>
			<rule>
				<interface>wan</interface>
				<enable>on</enable>
				<uuid>28826</uuid>
				<descr><![CDATA[WAN]]></descr>
				<enable_verbose_logging>off</enable_verbose_logging>
				<max_pcap_log_size>32</max_pcap_log_size>
				<max_pcap_log_files>100</max_pcap_log_files>
				<pcap_log_conditional>alerts</pcap_log_conditional>
				<enable_stats_collection>off</enable_stats_collection>
				<enable_stats_log>off</enable_stats_log>
				<append_stats_log>off</append_stats_log>
				<stats_upd_interval>10</stats_upd_interval>
				<enable_telegraf_stats>off</enable_telegraf_stats>
				<enable_http_log>on</enable_http_log>
				<append_http_log>on</append_http_log>
				<enable_tls_log>off</enable_tls_log>
				<append_tls_log>on</append_tls_log>
				<enable_tls_store>off</enable_tls_store>
				<http_log_extended>on</http_log_extended>
				<tls_log_extended>on</tls_log_extended>
				<tls_session_resumption>off</tls_session_resumption>
				<enable_pcap_log>off</enable_pcap_log>
				<pcap_use_stream_depth>off</pcap_use_stream_depth>
				<pcap_honor_pass_rules>off</pcap_honor_pass_rules>
				<enable_file_store>off</enable_file_store>
				<tls_log_filetype>regular</tls_log_filetype>
				<http_log_filetype>regular</http_log_filetype>
				<runmode>autofp</runmode>
				<autofp_scheduler>hash</autofp_scheduler>
				<max_pending_packets>1024</max_pending_packets>
				<inspect_recursion_limit>3000</inspect_recursion_limit>
				<intf_snaplen>1518</intf_snaplen>
				<detect_eng_profile>medium</detect_eng_profile>
				<mpm_algo>auto</mpm_algo>
				<spm_algo>auto</spm_algo>
				<sgh_mpm_context>auto</sgh_mpm_context>
				<blockoffenders>off</blockoffenders>
				<ips_mode>ips_mode_legacy</ips_mode>
				<ips_netmap_threads>auto</ips_netmap_threads>
				<blockoffenderskill>on</blockoffenderskill>
				<block_drops_only>off</block_drops_only>
				<passlist_debug_log>off</passlist_debug_log>
				<blockoffendersip>both</blockoffendersip>
				<passlistname>default</passlistname>
				<homelistname>default</homelistname>
				<externallistname>default</externallistname>
				<suppresslistname>wansuppress_66202ae15be0a</suppresslistname>
				<alertsystemlog>on</alertsystemlog>
				<alertsystemlog_facility>local1</alertsystemlog_facility>
				<alertsystemlog_priority>notice</alertsystemlog_priority>
				<enable_eve_log>on</enable_eve_log>
				<eve_output_type>syslog</eve_output_type>
				<eve_systemlog_facility>local6</eve_systemlog_facility>
				<eve_systemlog_priority>notice</eve_systemlog_priority>
				<eve_log_ethernet>no</eve_log_ethernet>
				<eve_log_alerts>on</eve_log_alerts>
				<eve_log_alerts_payload>on</eve_log_alerts_payload>
				<eve_log_alerts_packet>on</eve_log_alerts_packet>
				<eve_log_alerts_metadata>on</eve_log_alerts_metadata>
				<eve_log_alerts_http>on</eve_log_alerts_http>
				<eve_log_alerts_xff>off</eve_log_alerts_xff>
				<eve_log_alerts_xff_mode>extra-data</eve_log_alerts_xff_mode>
				<eve_log_alerts_xff_deployment>reverse</eve_log_alerts_xff_deployment>
				<eve_log_alerts_xff_header>X-Forwarded-For</eve_log_alerts_xff_header>
				<eve_log_alerts_verdict>off</eve_log_alerts_verdict>
				<eve_log_alerts_tagged>off</eve_log_alerts_tagged>
				<eve_log_drops>on</eve_log_drops>
				<eve_log_alert_drops>on</eve_log_alert_drops>
				<eve_log_drops_verdict>off</eve_log_drops_verdict>
				<eve_log_drops_flows>all</eve_log_drops_flows>
				<eve_log_anomaly>off</eve_log_anomaly>
				<eve_log_anomaly_type_decode>off</eve_log_anomaly_type_decode>
				<eve_log_anomaly_type_stream>off</eve_log_anomaly_type_stream>
				<eve_log_anomaly_type_applayer>on</eve_log_anomaly_type_applayer>
				<eve_log_anomaly_packethdr>off</eve_log_anomaly_packethdr>
				<eve_log_http>on</eve_log_http>
				<eve_log_dns>on</eve_log_dns>
				<eve_log_tls>on</eve_log_tls>
				<eve_log_dhcp>on</eve_log_dhcp>
				<eve_log_nfs>on</eve_log_nfs>
				<eve_log_smb>on</eve_log_smb>
				<eve_log_krb5>on</eve_log_krb5>
				<eve_log_ikev2>on</eve_log_ikev2>
				<eve_log_tftp>on</eve_log_tftp>
				<eve_log_bittorrent>off</eve_log_bittorrent>
				<eve_log_pgsql>off</eve_log_pgsql>
				<eve_log_quic>on</eve_log_quic>
				<eve_log_rdp>off</eve_log_rdp>
				<eve_log_sip>off</eve_log_sip>
				<eve_log_files>on</eve_log_files>
				<eve_log_ssh>on</eve_log_ssh>
				<eve_log_smtp>on</eve_log_smtp>
				<eve_log_stats>off</eve_log_stats>
				<eve_log_flow>off</eve_log_flow>
				<eve_log_netflow>off</eve_log_netflow>
				<eve_log_snmp>on</eve_log_snmp>
				<eve_log_mqtt>on</eve_log_mqtt>
				<eve_log_ftp>on</eve_log_ftp>
				<eve_log_http2>on</eve_log_http2>
				<eve_log_rfb>on</eve_log_rfb>
				<eve_log_stats_totals>on</eve_log_stats_totals>
				<eve_log_stats_deltas>off</eve_log_stats_deltas>
				<eve_log_stats_threads>off</eve_log_stats_threads>
				<eve_log_http_extended>on</eve_log_http_extended>
				<eve_log_tls_extended>on</eve_log_tls_extended>
				<eve_log_dhcp_extended>off</eve_log_dhcp_extended>
				<eve_log_smtp_extended>on</eve_log_smtp_extended>
				<eve_log_http_extended_headers>accept, accept-charset, accept-datetime, accept-encoding, accept-language, accept-range, age, allow, authorization, cache-control, connection, content-encoding, content-language, content-length, content-location, content-md5, content-range, content-type, cookie, date, dnt, etags, from, last-modified, link, location, max-forwards, origin, pragma, proxy-authenticate, proxy-authorization, range, referrer, refresh, retry-after, server, set-cookie, te, trailer, transfer-encoding, upgrade, vary, via, warning, www-authenticate, x-authenticated-user, x-flash-version, x-forwarded-proto, x-requested-with</eve_log_http_extended_headers>
				<eve_log_smtp_extended_fields>bcc, received, reply-to, x-mailer, x-originating-ip</eve_log_smtp_extended_fields>
				<eve_log_tls_extended_fields></eve_log_tls_extended_fields>
				<eve_log_files_magic>off</eve_log_files_magic>
				<eve_log_files_hash>none</eve_log_files_hash>
				<eve_log_drop>on</eve_log_drop>
				<delayed_detect>off</delayed_detect>
				<intf_promisc_mode>on</intf_promisc_mode>
				<eve_redis_server>127.0.0.1</eve_redis_server>
				<eve_redis_port>6379</eve_redis_port>
				<eve_redis_mode>list</eve_redis_mode>
				<eve_redis_key>suricata</eve_redis_key>
				<ip_max_frags>65535</ip_max_frags>
				<ip_frag_timeout>60</ip_frag_timeout>
				<frag_memcap>33554432</frag_memcap>
				<defrag_memcap_policy>ignore</defrag_memcap_policy>
				<ip_max_trackers>65535</ip_max_trackers>
				<frag_hash_size>65536</frag_hash_size>
				<flow_memcap>134217728</flow_memcap>
				<flow_memcap_policy>ignore</flow_memcap_policy>
				<flow_prealloc>10000</flow_prealloc>
				<flow_hash_size>65536</flow_hash_size>
				<flow_emerg_recovery>30</flow_emerg_recovery>
				<flow_prune>5</flow_prune>
				<flow_tcp_new_timeout>60</flow_tcp_new_timeout>
				<flow_tcp_established_timeout>3600</flow_tcp_established_timeout>
				<flow_tcp_closed_timeout>120</flow_tcp_closed_timeout>
				<flow_tcp_emerg_new_timeout>10</flow_tcp_emerg_new_timeout>
				<flow_tcp_emerg_established_timeout>300</flow_tcp_emerg_established_timeout>
				<flow_tcp_emerg_closed_timeout>20</flow_tcp_emerg_closed_timeout>
				<flow_udp_new_timeout>30</flow_udp_new_timeout>
				<flow_udp_established_timeout>300</flow_udp_established_timeout>
				<flow_udp_emerg_new_timeout>10</flow_udp_emerg_new_timeout>
				<flow_udp_emerg_established_timeout>100</flow_udp_emerg_established_timeout>
				<flow_icmp_new_timeout>30</flow_icmp_new_timeout>
				<flow_icmp_established_timeout>300</flow_icmp_established_timeout>
				<flow_icmp_emerg_new_timeout>10</flow_icmp_emerg_new_timeout>
				<flow_icmp_emerg_established_timeout>100</flow_icmp_emerg_established_timeout>
				<stream_memcap>268435456</stream_memcap>
				<stream_prealloc_sessions>32768</stream_prealloc_sessions>
				<reassembly_memcap>131217728</reassembly_memcap>
				<reassembly_depth>1048576</reassembly_depth>
				<reassembly_to_server_chunk>2560</reassembly_to_server_chunk>
				<reassembly_to_client_chunk>2560</reassembly_to_client_chunk>
				<max_synack_queued>5</max_synack_queued>
				<enable_midstream_sessions>off</enable_midstream_sessions>
				<stream_memcap_policy>ignore</stream_memcap_policy>
				<reassembly_memcap_policy>ignore</reassembly_memcap_policy>
				<midstream_policy>ignore</midstream_policy>
				<stream_checksum_validation>off</stream_checksum_validation>
				<enable_async_sessions>off</enable_async_sessions>
				<stream_bypass>no</stream_bypass>
				<stream_drop_invalid>no</stream_drop_invalid>
				<app_layer_error_policy>ignore</app_layer_error_policy>
				<asn1_max_frames>256</asn1_max_frames>
				<bittorrent_parser>yes</bittorrent_parser>
				<dcerpc_parser>yes</dcerpc_parser>
				<dhcp_parser>yes</dhcp_parser>
				<dns_global_memcap>16777216</dns_global_memcap>
				<dns_state_memcap>524288</dns_state_memcap>
				<dns_request_flood_limit>500</dns_request_flood_limit>
				<dns_parser_udp>yes</dns_parser_udp>
				<dns_parser_tcp>yes</dns_parser_tcp>
				<dns_parser_udp_ports>53</dns_parser_udp_ports>
				<dns_parser_tcp_ports>53</dns_parser_tcp_ports>
				<enip_parser>yes</enip_parser>
				<ftp_parser>yes</ftp_parser>
				<ftp_data_parser>on</ftp_data_parser>
				<http_parser>yes</http_parser>
				<http_parser_memcap>67108864</http_parser_memcap>
				<http2_parser>yes</http2_parser>
				<ikev2_parser>yes</ikev2_parser>
				<imap_parser>detection-only</imap_parser>
				<krb5_parser>yes</krb5_parser>
				<mqtt_parser>yes</mqtt_parser>
				<msn_parser>detection-only</msn_parser>
				<nfs_parser>yes</nfs_parser>
				<ntp_parser>yes</ntp_parser>
				<pgsql_parser>no</pgsql_parser>
				<quic_parser>yes</quic_parser>
				<rdp_parser>yes</rdp_parser>
				<rfb_parser>yes</rfb_parser>
				<sip_parser>yes</sip_parser>
				<smb_parser>yes</smb_parser>
				<smtp_parser>yes</smtp_parser>
				<smtp_parser_decode_mime>off</smtp_parser_decode_mime>
				<smtp_parser_decode_base64>on</smtp_parser_decode_base64>
				<smtp_parser_decode_quoted_printable>on</smtp_parser_decode_quoted_printable>
				<smtp_parser_extract_urls>on</smtp_parser_extract_urls>
				<smtp_parser_compute_body_md5>off</smtp_parser_compute_body_md5>
				<snmp_parser>yes</snmp_parser>
				<ssh_parser>yes</ssh_parser>
				<telnet_parser>yes</telnet_parser>
				<tftp_parser>yes</tftp_parser>
				<tls_parser>yes</tls_parser>
				<tls_detect_ports>443</tls_detect_ports>
				<tls_encrypt_handling>default</tls_encrypt_handling>
				<tls_ja3_fingerprint>off</tls_ja3_fingerprint>
				<enable_iprep>off</enable_iprep>
				<host_memcap>33554432</host_memcap>
				<host_hash_size>4096</host_hash_size>
				<host_prealloc>1000</host_prealloc>
				<host_os_policy>
					<item>
						<name>default</name>
						<bind_to>all</bind_to>
						<policy>bsd</policy>
					</item>
				</host_os_policy>
				<libhtp_policy>
					<item>
						<name>default</name>
						<bind_to>all</bind_to>
						<personality>IDS</personality>
						<request-body-limit>4096</request-body-limit>
						<response-body-limit>4096</response-body-limit>
						<double-decode-path>no</double-decode-path>
						<double-decode-query>no</double-decode-query>
						<uri-include-all>no</uri-include-all>
						<meta-field-limit>18432</meta-field-limit>
					</item>
				</libhtp_policy>
				<rulesets>app-layer-events.rules||decoder-events.rules||dhcp-events.rules||dnp3-events.rules||dns-events.rules||files.rules||ftp-events.rules||http-events.rules||http2-events.rules||ipsec-events.rules||kerberos-events.rules||modbus-events.rules||mqtt-events.rules||nfs-events.rules||ntp-events.rules||quic-events.rules||rfb-events.rules||smb-events.rules||smtp-events.rules||ssh-events.rules||stream-events.rules||tls-events.rules</rulesets>
			</rule>
			<rule>
				<interface>opt1</interface>
				<enable>on</enable>
				<uuid>25462</uuid>
				<descr><![CDATA[OPT1]]></descr>
				<enable_verbose_logging>off</enable_verbose_logging>
				<max_pcap_log_size>32</max_pcap_log_size>
				<max_pcap_log_files>100</max_pcap_log_files>
				<pcap_log_conditional>alerts</pcap_log_conditional>
				<enable_stats_collection>off</enable_stats_collection>
				<enable_stats_log>off</enable_stats_log>
				<append_stats_log>off</append_stats_log>
				<stats_upd_interval>10</stats_upd_interval>
				<enable_telegraf_stats>off</enable_telegraf_stats>
				<enable_http_log>on</enable_http_log>
				<append_http_log>on</append_http_log>
				<enable_tls_log>off</enable_tls_log>
				<append_tls_log>on</append_tls_log>
				<enable_tls_store>off</enable_tls_store>
				<http_log_extended>on</http_log_extended>
				<tls_log_extended>on</tls_log_extended>
				<tls_session_resumption>off</tls_session_resumption>
				<enable_pcap_log>off</enable_pcap_log>
				<pcap_use_stream_depth>off</pcap_use_stream_depth>
				<pcap_honor_pass_rules>off</pcap_honor_pass_rules>
				<enable_file_store>off</enable_file_store>
				<tls_log_filetype>regular</tls_log_filetype>
				<http_log_filetype>regular</http_log_filetype>
				<runmode>autofp</runmode>
				<autofp_scheduler>hash</autofp_scheduler>
				<max_pending_packets>1024</max_pending_packets>
				<inspect_recursion_limit>3000</inspect_recursion_limit>
				<intf_snaplen>1518</intf_snaplen>
				<detect_eng_profile>medium</detect_eng_profile>
				<mpm_algo>auto</mpm_algo>
				<spm_algo>auto</spm_algo>
				<sgh_mpm_context>auto</sgh_mpm_context>
				<blockoffenders>off</blockoffenders>
				<ips_mode>ips_mode_legacy</ips_mode>
				<ips_netmap_threads>auto</ips_netmap_threads>
				<blockoffenderskill>on</blockoffenderskill>
				<block_drops_only>off</block_drops_only>
				<passlist_debug_log>off</passlist_debug_log>
				<blockoffendersip>both</blockoffendersip>
				<passlistname>default</passlistname>
				<homelistname>default</homelistname>
				<externallistname>default</externallistname>
				<suppresslistname>default</suppresslistname>
				<alertsystemlog>off</alertsystemlog>
				<alertsystemlog_facility>local1</alertsystemlog_facility>
				<alertsystemlog_priority>notice</alertsystemlog_priority>
				<enable_eve_log>off</enable_eve_log>
				<eve_output_type>regular</eve_output_type>
				<eve_systemlog_facility>local1</eve_systemlog_facility>
				<eve_systemlog_priority>notice</eve_systemlog_priority>
				<eve_log_ethernet>no</eve_log_ethernet>
				<eve_log_alerts>on</eve_log_alerts>
				<eve_log_alerts_payload>on</eve_log_alerts_payload>
				<eve_log_alerts_packet>on</eve_log_alerts_packet>
				<eve_log_alerts_metadata>on</eve_log_alerts_metadata>
				<eve_log_alerts_http>on</eve_log_alerts_http>
				<eve_log_alerts_xff>off</eve_log_alerts_xff>
				<eve_log_alerts_xff_mode>extra-data</eve_log_alerts_xff_mode>
				<eve_log_alerts_xff_deployment>reverse</eve_log_alerts_xff_deployment>
				<eve_log_alerts_xff_header>X-Forwarded-For</eve_log_alerts_xff_header>
				<eve_log_alerts_verdict>off</eve_log_alerts_verdict>
				<eve_log_alerts_tagged>off</eve_log_alerts_tagged>
				<eve_log_drops>on</eve_log_drops>
				<eve_log_alert_drops>on</eve_log_alert_drops>
				<eve_log_drops_verdict>off</eve_log_drops_verdict>
				<eve_log_drops_flows>all</eve_log_drops_flows>
				<eve_log_anomaly>off</eve_log_anomaly>
				<eve_log_anomaly_type_decode>off</eve_log_anomaly_type_decode>
				<eve_log_anomaly_type_stream>off</eve_log_anomaly_type_stream>
				<eve_log_anomaly_type_applayer>on</eve_log_anomaly_type_applayer>
				<eve_log_anomaly_packethdr>off</eve_log_anomaly_packethdr>
				<eve_log_http>on</eve_log_http>
				<eve_log_dns>on</eve_log_dns>
				<eve_log_tls>on</eve_log_tls>
				<eve_log_dhcp>on</eve_log_dhcp>
				<eve_log_nfs>on</eve_log_nfs>
				<eve_log_smb>on</eve_log_smb>
				<eve_log_krb5>on</eve_log_krb5>
				<eve_log_ikev2>on</eve_log_ikev2>
				<eve_log_tftp>on</eve_log_tftp>
				<eve_log_bittorrent>off</eve_log_bittorrent>
				<eve_log_pgsql>off</eve_log_pgsql>
				<eve_log_quic>on</eve_log_quic>
				<eve_log_rdp>off</eve_log_rdp>
				<eve_log_sip>off</eve_log_sip>
				<eve_log_files>on</eve_log_files>
				<eve_log_ssh>on</eve_log_ssh>
				<eve_log_smtp>on</eve_log_smtp>
				<eve_log_stats>off</eve_log_stats>
				<eve_log_flow>off</eve_log_flow>
				<eve_log_netflow>off</eve_log_netflow>
				<eve_log_snmp>on</eve_log_snmp>
				<eve_log_mqtt>on</eve_log_mqtt>
				<eve_log_ftp>on</eve_log_ftp>
				<eve_log_http2>on</eve_log_http2>
				<eve_log_rfb>on</eve_log_rfb>
				<eve_log_stats_totals>on</eve_log_stats_totals>
				<eve_log_stats_deltas>off</eve_log_stats_deltas>
				<eve_log_stats_threads>off</eve_log_stats_threads>
				<eve_log_http_extended>on</eve_log_http_extended>
				<eve_log_tls_extended>on</eve_log_tls_extended>
				<eve_log_dhcp_extended>off</eve_log_dhcp_extended>
				<eve_log_smtp_extended>on</eve_log_smtp_extended>
				<eve_log_http_extended_headers>accept, accept-charset, accept-datetime, accept-encoding, accept-language, accept-range, age, allow, authorization, cache-control, connection, content-encoding, content-language, content-length, content-location, content-md5, content-range, content-type, cookie, date, dnt, etags, from, last-modified, link, location, max-forwards, origin, pragma, proxy-authenticate, proxy-authorization, range, referrer, refresh, retry-after, server, set-cookie, te, trailer, transfer-encoding, upgrade, vary, via, warning, www-authenticate, x-authenticated-user, x-flash-version, x-forwarded-proto, x-requested-with</eve_log_http_extended_headers>
				<eve_log_smtp_extended_fields>bcc, received, reply-to, x-mailer, x-originating-ip</eve_log_smtp_extended_fields>
				<eve_log_tls_extended_fields></eve_log_tls_extended_fields>
				<eve_log_files_magic>off</eve_log_files_magic>
				<eve_log_files_hash>none</eve_log_files_hash>
				<eve_log_drop>on</eve_log_drop>
				<delayed_detect>off</delayed_detect>
				<intf_promisc_mode>on</intf_promisc_mode>
				<eve_redis_server>127.0.0.1</eve_redis_server>
				<eve_redis_port>6379</eve_redis_port>
				<eve_redis_mode>list</eve_redis_mode>
				<eve_redis_key>suricata</eve_redis_key>
				<ip_max_frags>65535</ip_max_frags>
				<ip_frag_timeout>60</ip_frag_timeout>
				<frag_memcap>33554432</frag_memcap>
				<defrag_memcap_policy>ignore</defrag_memcap_policy>
				<ip_max_trackers>65535</ip_max_trackers>
				<frag_hash_size>65536</frag_hash_size>
				<flow_memcap>134217728</flow_memcap>
				<flow_memcap_policy>ignore</flow_memcap_policy>
				<flow_prealloc>10000</flow_prealloc>
				<flow_hash_size>65536</flow_hash_size>
				<flow_emerg_recovery>30</flow_emerg_recovery>
				<flow_prune>5</flow_prune>
				<flow_tcp_new_timeout>60</flow_tcp_new_timeout>
				<flow_tcp_established_timeout>3600</flow_tcp_established_timeout>
				<flow_tcp_closed_timeout>120</flow_tcp_closed_timeout>
				<flow_tcp_emerg_new_timeout>10</flow_tcp_emerg_new_timeout>
				<flow_tcp_emerg_established_timeout>300</flow_tcp_emerg_established_timeout>
				<flow_tcp_emerg_closed_timeout>20</flow_tcp_emerg_closed_timeout>
				<flow_udp_new_timeout>30</flow_udp_new_timeout>
				<flow_udp_established_timeout>300</flow_udp_established_timeout>
				<flow_udp_emerg_new_timeout>10</flow_udp_emerg_new_timeout>
				<flow_udp_emerg_established_timeout>100</flow_udp_emerg_established_timeout>
				<flow_icmp_new_timeout>30</flow_icmp_new_timeout>
				<flow_icmp_established_timeout>300</flow_icmp_established_timeout>
				<flow_icmp_emerg_new_timeout>10</flow_icmp_emerg_new_timeout>
				<flow_icmp_emerg_established_timeout>100</flow_icmp_emerg_established_timeout>
				<stream_memcap>268435456</stream_memcap>
				<stream_prealloc_sessions>32768</stream_prealloc_sessions>
				<reassembly_memcap>131217728</reassembly_memcap>
				<reassembly_depth>1048576</reassembly_depth>
				<reassembly_to_server_chunk>2560</reassembly_to_server_chunk>
				<reassembly_to_client_chunk>2560</reassembly_to_client_chunk>
				<max_synack_queued>5</max_synack_queued>
				<enable_midstream_sessions>off</enable_midstream_sessions>
				<stream_memcap_policy>ignore</stream_memcap_policy>
				<reassembly_memcap_policy>ignore</reassembly_memcap_policy>
				<midstream_policy>ignore</midstream_policy>
				<stream_checksum_validation>off</stream_checksum_validation>
				<enable_async_sessions>off</enable_async_sessions>
				<stream_bypass>off</stream_bypass>
				<stream_drop_invalid>off</stream_drop_invalid>
				<app_layer_error_policy>ignore</app_layer_error_policy>
				<asn1_max_frames>256</asn1_max_frames>
				<bittorrent_parser>yes</bittorrent_parser>
				<dcerpc_parser>yes</dcerpc_parser>
				<dhcp_parser>yes</dhcp_parser>
				<dns_global_memcap>16777216</dns_global_memcap>
				<dns_state_memcap>524288</dns_state_memcap>
				<dns_request_flood_limit>500</dns_request_flood_limit>
				<dns_parser_udp>yes</dns_parser_udp>
				<dns_parser_tcp>yes</dns_parser_tcp>
				<dns_parser_udp_ports>53</dns_parser_udp_ports>
				<dns_parser_tcp_ports>53</dns_parser_tcp_ports>
				<enip_parser>yes</enip_parser>
				<ftp_parser>yes</ftp_parser>
				<ftp_data_parser>on</ftp_data_parser>
				<http_parser>yes</http_parser>
				<http_parser_memcap>67108864</http_parser_memcap>
				<http2_parser>yes</http2_parser>
				<ikev2_parser>yes</ikev2_parser>
				<imap_parser>detection-only</imap_parser>
				<krb5_parser>yes</krb5_parser>
				<mqtt_parser>yes</mqtt_parser>
				<msn_parser>detection-only</msn_parser>
				<nfs_parser>yes</nfs_parser>
				<ntp_parser>yes</ntp_parser>
				<pgsql_parser>no</pgsql_parser>
				<quic_parser>yes</quic_parser>
				<rdp_parser>yes</rdp_parser>
				<rfb_parser>yes</rfb_parser>
				<sip_parser>yes</sip_parser>
				<smb_parser>yes</smb_parser>
				<smtp_parser>yes</smtp_parser>
				<smtp_parser_decode_mime>off</smtp_parser_decode_mime>
				<smtp_parser_decode_base64>on</smtp_parser_decode_base64>
				<smtp_parser_decode_quoted_printable>on</smtp_parser_decode_quoted_printable>
				<smtp_parser_extract_urls>on</smtp_parser_extract_urls>
				<smtp_parser_compute_body_md5>off</smtp_parser_compute_body_md5>
				<snmp_parser>yes</snmp_parser>
				<ssh_parser>yes</ssh_parser>
				<telnet_parser>yes</telnet_parser>
				<tftp_parser>yes</tftp_parser>
				<tls_parser>yes</tls_parser>
				<tls_detect_ports>443</tls_detect_ports>
				<tls_encrypt_handling>default</tls_encrypt_handling>
				<tls_ja3_fingerprint>off</tls_ja3_fingerprint>
				<enable_iprep>off</enable_iprep>
				<host_memcap>33554432</host_memcap>
				<host_hash_size>4096</host_hash_size>
				<host_prealloc>1000</host_prealloc>
				<host_os_policy>
					<item>
						<name>default</name>
						<bind_to>all</bind_to>
						<policy>bsd</policy>
					</item>
				</host_os_policy>
				<libhtp_policy>
					<item>
						<name>default</name>
						<bind_to>all</bind_to>
						<personality>IDS</personality>
						<request-body-limit>4096</request-body-limit>
						<response-body-limit>4096</response-body-limit>
						<double-decode-path>no</double-decode-path>
						<double-decode-query>no</double-decode-query>
						<uri-include-all>no</uri-include-all>
						<meta-field-limit>18432</meta-field-limit>
					</item>
				</libhtp_policy>
				<rulesets>app-layer-events.rules||decoder-events.rules||dhcp-events.rules||dnp3-events.rules||dns-events.rules||files.rules||ftp-events.rules||http-events.rules||http2-events.rules||ipsec-events.rules||kerberos-events.rules||modbus-events.rules||mqtt-events.rules||nfs-events.rules||ntp-events.rules||quic-events.rules||rfb-events.rules||smb-events.rules||smtp-events.rules||ssh-events.rules||stream-events.rules||tls-events.rules</rulesets>
			</rule>
			<suppress>
				<item>
					<uuid>66202ae15be0a</uuid>
					<name>wansuppress_66202ae15be0a</name>
					<descr><![CDATA[Auto-generated list for Alert suppression]]></descr>
					<suppresspassthru>I1NVUklDQVRBIFNUUkVBTSBQYWNrZXQgd2l0aCBpbnZhbGlkIHRpbWVzdGFtcApzdXBwcmVzcyBnZW5faWQgMSwgc2lnX2lkIDIyMTAwNDQsIHRyYWNrIGJ5X2RzdCwgaXAgMTkyLjE2OC4wLjE4Cg==</suppresspassthru>
				</item>
			</suppress>
		</suricata>
		<menu>
			<name>Suricata</name>
			<tooltiptext>Configure Suricata settings</tooltiptext>
			<section>Services</section>
			<url>/suricata/suricata_interfaces.php</url>
		</menu>
		<menu>
			<name>Squid Proxy Reports</name>
			<section>Status</section>
			<url>/pkg_edit.php?xml=lightsquid.xml</url>
		</menu>
		<menu>
			<name>Squid Proxy Server</name>
			<tooltiptext>Modify the proxy server settings</tooltiptext>
			<section>Services</section>
			<url>/pkg_edit.php?xml=squid.xml&amp;id=0</url>
		</menu>
		<menu>
			<name>Squid Reverse Proxy</name>
			<tooltiptext>Modify the reverse proxy server settings</tooltiptext>
			<section>Services</section>
			<url>/pkg_edit.php?xml=squid_reverse_general.xml&amp;id=0</url>
		</menu>
		<menu>
			<name>pfBlockerNG</name>
			<section>Firewall</section>
			<url>/pfblockerng/pfblockerng_general.php</url>
		</menu>
		<service>
			<name>suricata</name>
			<rcfile>suricata.sh</rcfile>
			<executable>suricata</executable>
			<description><![CDATA[Suricata IDS/IPS Daemon]]></description>
		</service>
		<service>
			<name>lightsquid_web</name>
			<rcfile>lighttpd_ls.sh</rcfile>
			<executable>lighttpd_ls</executable>
			<description><![CDATA[Lightsquid Web Server]]></description>
		</service>
		<service>
			<name>squid</name>
			<rcfile>squid.sh</rcfile>
			<executable>squid</executable>
			<description><![CDATA[Squid Proxy Server Service]]></description>
		</service>
		<service>
			<name>clamd</name>
			<rcfile>clamd.sh</rcfile>
			<executable>clamd</executable>
			<description><![CDATA[ClamAV Antivirus]]></description>
		</service>
		<service>
			<name>c-icap</name>
			<rcfile>c-icap.sh</rcfile>
			<executable>c-icap</executable>
			<description><![CDATA[ICAP Interface for Squid and ClamAV integration]]></description>
		</service>
		<service>
			<name>pfb_dnsbl</name>
			<rcfile>pfb_dnsbl.sh</rcfile>
			<executable>lighttpd_pfb</executable>
			<description><![CDATA[pfBlockerNG DNSBL service]]></description>
		</service>
		<service>
			<name>pfb_filter</name>
			<rcfile>pfb_filter.sh</rcfile>
			<executable>php_pfb</executable>
			<description><![CDATA[pfBlockerNG firewall filter service]]></description>
		</service>
		<squidcache>
			<config>
				<nocache>on</nocache>
				<cache_replacement_policy>heap LFUDA</cache_replacement_policy>
				<cache_swap_low>90</cache_swap_low>
				<cache_swap_high>95</cache_swap_high>
				<donotcache></donotcache>
				<enable_offline></enable_offline>
				<ext_cachemanager></ext_cachemanager>
				<harddisk_cache_size>100</harddisk_cache_size>
				<harddisk_cache_system>ufs</harddisk_cache_system>
				<level1_subdirs>16</level1_subdirs>
				<harddisk_cache_location>/var/squid/cache</harddisk_cache_location>
				<minimum_object_size>0</minimum_object_size>
				<maximum_object_size>4</maximum_object_size>
				<memory_cache_size>64</memory_cache_size>
				<maximum_objsize_in_mem>256</maximum_objsize_in_mem>
				<memory_replacement_policy>heap GDSF</memory_replacement_policy>
				<cache_dynamic_content></cache_dynamic_content>
				<custom_refresh_patterns></custom_refresh_patterns>
			</config>
		</squidcache>
		<squidauth>
			<config>
				<auth_method>none</auth_method>
			</config>
		</squidauth>
		<squid>
			<config>
				<enable_squid>on</enable_squid>
				<keep_squid_data>on</keep_squid_data>
				<listenproto>inet</listenproto>
				<carpstatusvid>none</carpstatusvid>
				<active_interface>opt1</active_interface>
				<outgoing_interface>auto</outgoing_interface>
				<proxy_port>3128</proxy_port>
				<icp_port></icp_port>
				<allow_interface>on</allow_interface>
				<dns_v4_first></dns_v4_first>
				<disable_pinger></disable_pinger>
				<dns_nameservers></dns_nameservers>
				<extraca>none</extraca>
				<transparent_proxy>on</transparent_proxy>
				<transparent_active_interface>opt1</transparent_active_interface>
				<private_subnet_proxy_off></private_subnet_proxy_off>
				<defined_ip_proxy_off></defined_ip_proxy_off>
				<defined_ip_proxy_off_dest></defined_ip_proxy_off_dest>
				<ssl_proxy></ssl_proxy>
				<sslproxy_mitm_mode>splicewhitelist</sslproxy_mitm_mode>
				<ssl_active_interface>lan</ssl_active_interface>
				<ssl_proxy_port></ssl_proxy_port>
				<sslproxy_compatibility_mode>modern</sslproxy_compatibility_mode>
				<dhparams_size>2048</dhparams_size>
				<dca>none</dca>
				<sslcrtd_children></sslcrtd_children>
				<interception_checks></interception_checks>
				<interception_adapt></interception_adapt>
				<log_enabled>on</log_enabled>
				<log_dir>/var/squid/logs</log_dir>
				<log_rotate></log_rotate>
				<log_sqd></log_sqd>
				<visible_hostname>localhost</visible_hostname>
				<admin_email>admin@localhost</admin_email>
				<error_language>en</error_language>
				<xforward_mode>on</xforward_mode>
				<disable_via></disable_via>
				<uri_whitespace>strip</uri_whitespace>
				<disable_squidversion></disable_squidversion>
				<custom_options></custom_options>
				<custom_options_squid3></custom_options_squid3>
				<custom_options2_squid3></custom_options2_squid3>
				<custom_options3_squid3></custom_options3_squid3>
			</config>
		</squid>
		<pfblockerng>
			<config>
				<enable_cb>on</enable_cb>
				<pfb_keep>on</pfb_keep>
				<pfb_reuse></pfb_reuse>
				<pfb_interval>1</pfb_interval>
				<pfb_min>0</pfb_min>
				<pfb_hour>0</pfb_hour>
				<pfb_dailystart>0</pfb_dailystart>
				<skipfeed>0</skipfeed>
				<log_max_log>20000</log_max_log>
				<log_max_errlog>20000</log_max_errlog>
				<log_max_extraslog>20000</log_max_extraslog>
				<log_max_ip_blocklog>20000</log_max_ip_blocklog>
				<log_max_ip_permitlog>20000</log_max_ip_permitlog>
				<log_max_ip_matchlog>20000</log_max_ip_matchlog>
				<log_max_dnslog>20000</log_max_dnslog>
				<log_max_dnsbl_parse_err>20000</log_max_dnsbl_parse_err>
				<log_max_dnsreplylog>20000</log_max_dnsreplylog>
				<log_max_unilog>20000</log_max_unilog>
			</config>
		</pfblockerng>
		<pfblockerngipsettings>
			<config>
				<enable_dup>on</enable_dup>
				<suppression>on</suppression>
				<inbound_interface>wan</inbound_interface>
				<inbound_deny_action>block</inbound_deny_action>
				<outbound_interface>lan,opt1</outbound_interface>
				<outbound_deny_action>block</outbound_deny_action>
				<pass_order>order_0</pass_order>
				<enable_agg></enable_agg>
				<enable_log></enable_log>
				<ip_placeholder>127.1.7.7</ip_placeholder>
				<maxmind_locale>en</maxmind_locale>
				<database_cc></database_cc>
				<maxmind_account></maxmind_account>
				<maxmind_key></maxmind_key>
				<asn_reporting>disabled</asn_reporting>
				<enable_float></enable_float>
				<autorule_suffix>autorule</autorule_suffix>
				<killstates></killstates>
				<v4suppression></v4suppression>
			</config>
		</pfblockerngipsettings>
		<pfblockerngdnsblsettings>
			<config>
				<pfb_dnsvip>10.10.10.1</pfb_dnsvip>
				<pfb_dnsport>8081</pfb_dnsport>
				<pfb_dnsport_ssl>8443</pfb_dnsport_ssl>
				<pfb_dnsblv6></pfb_dnsblv6>
				<pfb_dnsbl>on</pfb_dnsbl>
				<suppression>czMuYW1hem9uYXdzLmNvbQ0KczMtMS5hbWF6b25hd3MuY29tICMgQ05BTUUgZm9yIChzMy5hbWF6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eWNhc3Quc3RhdGljLmFkc2FmZXByb3RlY3RlZC5jb20gIyBDTkFNRSBmb3IgKHN0YXRpYy5hZHNh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</suppression>
			</config>
		</pfblockerngdnsblsettings>
		<pfblockerngdnsbl>
			<config>
				<aliasname>ADs_Basic</aliasname>
				<description><![CDATA[ADs Basic - Collection of ADvertisement Domain Feeds.]]></description>
				<row>
					<format>auto</format>
					<state><![CDATA[Enabled]]></state>
					<url>https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts</url>
					<header>StevenBlack_ADs</header>
				</row>
				<action>unbound</action>
				<cron>EveryDay</cron>
				<logging>enabled</logging>
				<order>default</order>
				<dow>1</dow>
			</config>
		</pfblockerngdnsbl>
		<pfblockernglistsv4>
			<config>
				<aliasname>PRI1</aliasname>
				<description><![CDATA[PRI1 - Collection of Feeds from the most reputable blocklist providers. (Primary tier)]]></description>
				<row>
					<format>auto</format>
					<state><![CDATA[Enabled]]></state>
					<url>https://feodotracker.abuse.ch/downloads/ipblocklist_recommended.txt</url>
					<header>Abuse_Feodo_C2</header>
				</row>
				<row>
					<format>auto</format>
					<state><![CDATA[Enabled]]></state>
					<url>https://sslbl.abuse.ch/blacklist/sslipblacklist.txt</url>
					<header>Abuse_SSLBL</header>
				</row>
				<row>
					<format>auto</format>
					<state><![CDATA[Enabled]]></state>
					<url>https://cinsarmy.com/list/ci-badguys.txt</url>
					<header>CINS_army</header>
				</row>
				<row>
					<format>auto</format>
					<state><![CDATA[Enabled]]></state>
					<url>https://rules.emergingthreats.net/fwrules/emerging-Block-IPs.txt</url>
					<header>ET_Block</header>
				</row>
				<row>
					<format>auto</format>
					<state><![CDATA[Enabled]]></state>
					<url>https://rules.emergingthreats.net/blockrules/compromised-ips.txt</url>
					<header>ET_Comp</header>
				</row>
				<row>
					<format>auto</format>
					<state><![CDATA[Enabled]]></state>
					<url>https://isc.sans.edu/block.txt</url>
					<header>ISC_Block</header>
				</row>
				<row>
					<format>auto</format>
					<state><![CDATA[Enabled]]></state>
					<url>https://www.spamhaus.org/drop/drop.txt</url>
					<header>Spamhaus_Drop</header>
				</row>
				<row>
					<format>auto</format>
					<state><![CDATA[Enabled]]></state>
					<url>https://www.spamhaus.org/drop/edrop.txt</url>
					<header>Spamhaus_eDrop</header>
				</row>
				<row>
					<format>auto</format>
					<state><![CDATA[Enabled]]></state>
					<url>https://talosintelligence.com/documents/ip-blacklist</url>
					<header>Talos_BL</header>
				</row>
				<action>Deny_Inbound</action>
				<cron>04hours</cron>
				<aliaslog>enabled</aliaslog>
				<dow>1</dow>
				<sort>sort</sort>
				<srcint></srcint>
				<script_pre></script_pre>
				<script_post></script_post>
				<stateremoval><![CDATA[enabled]]></stateremoval>
				<autoaddrnot_in></autoaddrnot_in>
				<autoports_in></autoports_in>
				<aliasports_in></aliasports_in>
				<autoaddr_in></autoaddr_in>
				<autonot_in></autonot_in>
				<aliasaddr_in></aliasaddr_in>
				<autoproto_in></autoproto_in>
				<agateway_in>default</agateway_in>
				<autoaddrnot_out></autoaddrnot_out>
				<autoports_out></autoports_out>
				<aliasports_out></aliasports_out>
				<autoaddr_out></autoaddr_out>
				<autonot_out></autonot_out>
				<aliasaddr_out></aliasaddr_out>
				<autoproto_out></autoproto_out>
				<agateway_out>default</agateway_out>
				<suppression_cidr>Disabled</suppression_cidr>
				<whois_convert></whois_convert>
				<custom></custom>
			</config>
		</pfblockernglistsv4>
		<pfblockerngblacklist></pfblockerngblacklist>
		<pfblockerngglobal></pfblockerngglobal>
		<pfblockerngsafesearch></pfblockerngsafesearch>
		<pfblockerngtopspammers>
			<config>
				<action>Deny_Inbound</action>
				<aliaslog>enabled</aliaslog>
			</config>
		</pfblockerngtopspammers>
		<pfblockerngafrica>
			<config>
				<action>Disabled</action>
				<aliaslog>enabled</aliaslog>
			</config>
		</pfblockerngafrica>
		<pfblockerngantarctica>
			<config>
				<action>Disabled</action>
				<aliaslog>enabled</aliaslog>
			</config>
		</pfblockerngantarctica>
		<pfblockerngasia>
			<config>
				<action>Disabled</action>
				<aliaslog>enabled</aliaslog>
			</config>
		</pfblockerngasia>
		<pfblockerngeurope>
			<config>
				<action>Disabled</action>
				<aliaslog>enabled</aliaslog>
			</config>
		</pfblockerngeurope>
		<pfblockerngnorthamerica>
			<config>
				<action>Disabled</action>
				<aliaslog>enabled</aliaslog>
			</config>
		</pfblockerngnorthamerica>
		<pfblockerngoceania>
			<config>
				<action>Disabled</action>
				<aliaslog>enabled</aliaslog>
			</config>
		</pfblockerngoceania>
		<pfblockerngsouthamerica>
			<config>
				<action>Disabled</action>
				<aliaslog>enabled</aliaslog>
			</config>
		</pfblockerngsouthamerica>
		<pfblockerngproxyandsatellite>
			<config>
				<action>Disabled</action>
				<aliaslog>enabled</aliaslog>
			</config>
		</pfblockerngproxyandsatellite>
	</installedpackages>
	<dhcpbackend>isc</dhcpbackend>
	<virtualip>
		<vip>
			<interface>lo0</interface>
			<descr><![CDATA[pfB DNSBL - DO NOT EDIT]]></descr>
			<type>single</type>
			<subnet_bits>32</subnet_bits>
			<subnet>10.10.10.1</subnet>
			<mode>ipalias</mode>
		</vip>
	</virtualip>
</pfsense>
